ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Localize My Post plugin 1.0 - Unauthenticated Local File Inclusion (LFI) vulnerability

Product
Localize My Post
Description
Unauthenticated Local File Inclusion (LFI) vulnerability found by Manuel Garcia Cardenas in WordPress Localize My Post plugin (version 1.0).
Solution
This plugin was closed on 2018 September 21th and is no longer available for download. Deactivate and delete the plugin as soon as possible.
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In 1.0
Disclosure date
2018-10-03
Credits
Manuel Garcia Cardenas
Submitter
ThreatPress